Rizful.com's avatar
Rizful.com admin@rizful.com 3 months ago
My issue is actually a lot more basic and grug-brained than this. In order to use Spark, you have to hit Lightspark's GraphQL endpoints. Those endpoints are all servers controlled by one family. It would be trivial for governments to pressure that family into collecting I.P. addresses and doing other various things to de-anonymize the payments. The fact that Lightspark also *specializes* in compliance, KYC, etc., is especially worrying.
↑ Parent

Replies (1)

goatmeal's avatar
goatmeal goatmeal@apathy.tv 3 months ago
I think we are seeing the same thing. a good L2 should have one or both of these properties: * anyone may begin confirming some other user's transactions without permission * the user may force their own transaction to be confirmed without permission if you don't have either of the first two, all the users are at the mercy of a closed set of participants, who could be a single company or might as well be a single company. then this company has total control over the usage of the L2, enabling them to funnel you into centralized infra, surveil you, or block your payments. permissionless = no single infra